fix(api,ci): remove type-only imports for DI and isolate CI ports from dev

- Remove `type` keyword from NestJS injectable class imports across all
  modules to fix runtime DI resolution (330+ handler/listener files)
- Offset CI docker-compose ports (5433/6380/8109/9002) to avoid
  conflicts with running dev containers
- Update .env.test, playwright.config.ts, and e2e workflow to use
  isolated CI ports with configurable overrides
- Fix prisma/seed.ts to use deterministic IDs for Prisma 7 upsert
  compatibility (phoneHash replaced phone as unique index)
- Add dedicated Docker bridge network for CI service containers

Co-Authored-By: Claude Opus 4 (1M context) <noreply@anthropic.com>

apps/api/src/modules/auth/application/commands/verify-mfa-challenge/verify-mfa-challenge.handler.ts

@@ -1,13 +1,13 @@
 import { Inject, InternalServerErrorException } from '@nestjs/common';
-import { CommandHandler, type ICommandHandler } from '@nestjs/cqrs';
-import { DomainException, type LoggerService, UnauthorizedException } from '@modules/shared';
+import { CommandHandler, ICommandHandler } from '@nestjs/cqrs';
+import { DomainException, LoggerService, UnauthorizedException } from '@modules/shared';
 import {
   MFA_CHALLENGE_REPOSITORY,
-  type IMfaChallengeRepository,
+  IMfaChallengeRepository,
 } from '../../../domain/repositories/mfa-challenge.repository';
-import { USER_REPOSITORY, type IUserRepository } from '../../../domain/repositories/user.repository';
-import { type MfaService } from '../../../infrastructure/services/mfa.service';
-import { type TokenService, type TokenPair } from '../../../infrastructure/services/token.service';
+import { USER_REPOSITORY, IUserRepository } from '../../../domain/repositories/user.repository';
+import { MfaService } from '../../../infrastructure/services/mfa.service';
+import { TokenService, TokenPair } from '../../../infrastructure/services/token.service';
 import { VerifyMfaChallengeCommand } from './verify-mfa-challenge.command';
 
 @CommandHandler(VerifyMfaChallengeCommand)